Sr Red Team Analyst



Amsterdam, Netherlands
Posted on Friday, November 3, 2023
, Netherlands

Job Family Group:

Information Technology (IT)

Worker Type:


Posting Start Date:

September 1, 2023

Business unit:

Projects and Technology

Experience Level:

Experienced Professionals

Job Description:

Where you fit in

Shell is an international energy company with expertise in the exploration, production, refining and marketing of oil and natural gas, and the manufacturing and marketing of chemicals.

Shell’s purpose is to power progress together with more and cleaner energy solutions. We believe that rising standards of living for a growing global population are likely to continue to drive demand for energy, including oil and gas, for years to come. At the same time, technology changes and the need to tackle climate change means there is a transition underway to a lower-carbon, multisource energy system.

What’s the role?

As businesses leverage digitalization opportunities, their cyber-attack surface structurally increases, which can lead to business disruptions, data breaches and brand damage. High profile industry incidents show that these risks are real, and this has turned cyber resilience into a topic for Boards.

Cyber-attacks can have adverse effects such as brand reputation, destruction of assets and loss of information. Shell is acting to detect and respond to the continuous flow of these types of attacks.

As part of the Information Risk Management function, the CyberDefence capability has specific focus on identifying cyber threats, discovery of IT vulnerabilities, monitoring for cyber intrusions and response to security incidents and test our defences.

As part of the CyberDefence capability the Threat and Analytics team in CyberDefence has three main areas of focus:

  • Understand the internal and external threat landscape, what threats to focus on and how these can be identified within Shell.

  • Find unknown active cyber security threats within Shell and weaknesses in our security controls by applying data analysis techniques to large, diverse sets of internal and external data.

  • Test if our security controls provide us the ability to protect, detect and respond to real cyber-attacks.

Within CyberDefence, the Red Team is a process-driven security function with the purpose of verifying the correct functioning of defensive tools, people, and processes. To help realize this capability, continuous security assurance improvements are made through awareness and exposure of critical weaknesses in our IT environment.

The Red Team process is set up to work independently of the pen testing team in CyberDefence; where pen testing is aimed at finding and fixing vulnerabilities in the applications and services, the red team function is designed and set up to test the effectiveness of the security controls which include detection, visibility for monitoring, and incident capabilities.

The Red Team Analyst is part of the CyberDefence Threat and Analytics team and expected to collaborate with the Threat team, incident response team and security engineers to tune detection mechanisms and provide input to threat hunting attack hypotheses.

  • Planning of specific Red Team scenarios, in alignment and coordination with the Leadership Team (LT) and in some (high profile) cases.

  • Assist with design of attack scenarios, implement and maintain lab/tools/environment for testing

  • Perform controlled execution of attack scenarios against live systems to simulate real adversary tactics, conduct attack and vulnerability research, with the purpose to test the CyberDefence detection capabilities with the aim to remain undetected.

  • The Red Team member will work to evade, and therefore test the detection mechanisms in place, and will assist to address weaknesses with relevant stakeholders to uplift potentially discovered weaknesses.

  • Assess and routinely adopt the tools and techniques of actual adversaries, leverage the understanding of attacks on other organizations, and mimic the work of adversaries to support training of our monitoring analysts.

  • Produces high quality deliverables in terms of both content and presentation. Examples of deliverables include: communication protocols, proof of concept exploit code/scripts, reports, presentations and reasoned arguments to improve security posture.

  • Engagement with CyberDefence LT members and specific functions to gain focus and prioritize systemic weaknesses identified for remediation, balancing risk and impact with other ongoing activities.

What we need from you

As a Sr Security Red Team Analyst, you must have the following skills/qualifications:

  • Completed a Bachelor of Science education in Computer Science or higher.

  • Knowledge and an exposure to red team experience and significant experience with full scope pen testing, hands-on technical security experience in system administration or network administration.

  • Proficient in developing exploit code and scripts using Python, PowerShell, and other programming languages

  • Proficient in systems administration, pen testing and using industry standard red team tools such as: Cobalt Strike, Metasploit, PowerShell Empire, custom tools, Bloodhound, etc.

  • Ability to write high quality executive debrief presentations and detailed technical testing reports

  • Carries out assignments and projects, alone or as part of a team, applying knowledge, skills, and experience.

  • Strong team player, must be able to work with others and contribute to help solve complex issues

  • Demonstrate broad knowledge of MS Windows, Unix-based and mid-range platform systems used to deliver commercial enterprise applications as well as cloud environments.

  • Understanding of a Red Teams mission to drive security improvements through partnerships with the relevant stakeholders.

  • Demonstrates an understanding of the issues of interest to Shell and proposes viable solutions within the scope of own expertise, considering the needs of those affected.

  • Maintains knowledge and experience of current practice within own area of expertise and is aware of current developments within own area of expertise.

  • Possesses any of the following certifications are preferred but not required: OSCP, OSCE, GWAPT, GPEN.

Company Description

Shell Nederland BV is a platform for international collaboration, with Shell offering direct employment to around ten thousand people in the Netherlands alone, including roughly 2,800 non-Dutch employees from around 80 countries. Diversity is key at Shell Nederland, and our employees reflect the innovation that stems from a diverse workforce. By joining Shell Nederland, you will benefit from an unrivalled industry-leading development programme that will see you tap into a pool of expert knowledge that will help propel your career. Shell Nederland is the holding company of most Shell companies operating in the Netherlands. Shell Nederland also has an advisory and coordinating role in numerous areas.

An innovative place to work

There’s never been a more exciting time to work at Shell.

Join us and you’ll be adding your talent and imagination to a business with the ambition to shape the future – whether by investing in oil, gas and renewable energy to meet demand, exploring new ways to store energy, or developing technology that helps the world to use energy more efficiently, everyone at Shell does their part.

An inclusive place to work

To power progress, we need to attract and develop the brightest minds and make sure every voice is heard. Here are just some of the ways we are nurturing an inclusive environment – one where you can express your ideas, extend your skills, and reach your potential.

  • We’re creating a space where people with disabilities can excel through transparent recruitment process, workplace adjustments and ongoing support in their roles. Feel free to let us know about your circumstances when you apply, and we’ll take it from there.

  • We’re closing the gender gap – whether that’s through action on equal pay or by enabling more women to reach senior roles in engineering and technology.

  • We’re striving to be a pioneer of an inclusive and diverse workplace, promoting equality for employees regardless of sexual orientation or gender identity.

  • We consider ourselves a flexible employer and want to support you finding the right balance. We encourage you to discuss this with us in your application.

A rewarding place to work

Combine our creative, collaborative environment and global operations with an impressive range of benefits and joining Shell becomes an inspired career choice.

We’re huge advocates for career development. We’ll encourage you to try new roles and experience new settings. By pushing people to reach their potential, we frequently help them find skills they never knew they had, or make career moves they never thought possible.



Please note: We occasionally amend or withdraw Shell jobs and reserve the right to do so at any time, including prior to the advertised closing date. Before applying, you are advised to read our data protection policy. This policy describes the processing that may be associated with your personal data and informs you that your personal data may be transferred to Shell/Shell Group companies around the world. The Shell Group and its approved recruitment consultants will never ask you for a fee to process or consider your application for a career with Shell. Anyone who demands such a fee is not an authorised Shell representative and you are strongly advised to refuse any such demand. Shell is an Equal Opportunity Employer.